I'm wondering if Apple have described the circumstances, apart from the malware scenario, in which they would revoke a developer ID and the associated signing certificate?

Also, do users get the choice to accept a certificate revocation?